Design/Logic Flaw

2014-11-0123:55:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.2%

JSON

FortiNet FortiADC-E with firmware 3.1.1 before 4.0.5 and Coyote Point Equalizer with firmware 10.2.0a allows remote attackers to obtain access to arbitrary subnets via unspecified vectors.

CPENameOperatorVersion
coyote_point_equalizer_firmwareeq10.2.97
fortiadc_firmwareeq3.1.1
fortiadc_firmwareeq3.2.0
fortiadc_firmwareeq3.2.1
fortiadc_firmwareeq4.0.4

Name	Operator	Version
coyote_point_equalizer_firmware	eq	10.2.97
fortiadc_firmware	eq	3.1.1
fortiadc_firmware	eq	3.2.0
fortiadc_firmware	eq	3.2.1
fortiadc_firmware	eq	4.0.4

References

docs.fortinet.com/uploaded/files/2164/FortiADC-E-4.0.5-GA-Release-Notes.pdf

secunia.com/advisories/61866

www.fortiguard.com/advisory/FG-IR-14-032/

exchange.xforce.ibmcloud.com/vulnerabilities/98384